Wordpress XML-RPC Cyberattack in REAL TIME

Penetration Testing Wiki

WordPress XML-RPC Cyberattack in REAL TIME

Quick video showing a successful attack doing a Denial of Service against a website using WordPress.



To be protected against this cyberattack, do not forget to restrict access to /xmlrpc.php resource only from your IP address (1.2.3.4 in the example below).

For Apache, edit /.htaccess file to add:

<Files "xmlrpc.php"> 
   order deny,allow 
   deny from all 
   allow from 1.2.3.4 
</Files>

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.